AMENDMENTS TO THE CLAIMS 



1 . (Currently Amended) A method for establishing a connection for a mobile node on a 
communication system having a home network for the mobile node and at least one 
foreign network comprising the steps of: 

receiving a registration request message at a foreign network Authentication, 
Authorization Accounting server; 

transmitting a request to an Authentication, Authorization, Accounting broker 
server to obtain service level agreement information to establish a secure connection 
between the foreign and home networks; and 

receiving at the foreign network Authentication, Authorization, Accounting server 
a response transmitted from the Authentication, Authorization, Accounting broker server 
containing service level agreement information stored on the Authentication, 
Authorization, Accounting broker server, wherein the response transmitted from the 
Authentication, Authorization, Accounting broker server contains the Internet Protocol 
address of the home network to which the request should be directly forwarded and one 
or more instances of a first value to indicate that one or more different host networks can 
be contacted. 
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2. (Currently Amended) The method of establishing a home network connection in 
Claim 1 further comprising the step of: 

establishing a connection with an Authentication, Authorization, Accounting 
server on the home network based upon the information received from the 
Authentication, Authorization, Accounting broker server. 

3. (Previously Presented) The method of establishing a home network connection in 
Claim 1 further comprising the step of: 

receiving a response from the Authentication, Authorization, Accounting 
broker server with a rejection response after the Authentication, Authorization, 
Accounting broker server determines that the home network is not found by the 
Authentication, Authorization, Accounting broker server. 

4. (Canceled) The method of establishing a home network connection in Claim 1 
where the response from the Authentication, Authorization, Accounting broker server 
contains the Internet Protocol address of the home network to which the request 
should be directly forwarded. 

5. (Canceled) The method of establishing a home network connection in Claim 4 
wherein the response from the Authentication, Authorization, Accounting broker 
server has multiple instances of a first value to indicate that different host networks 
can be contacted. 
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6. (Previously Presented) The method of establishing a home network connection in 
Claim 1 further comprising the step of: 

transmitting the request to the Authentication, Authorization, Accounting 
broker server for all messages to be addressed to unknown networks in order to 
identify the home network. 

7. (Previously Presented) The method of establishing a home network connection in 
Claim 1 further comprising the step of: 

receiving the response from the Authentication, Authorization, Accounting 
broker server with a tag value that indicates the timeout value for a particular host. 

8. (Previously Presented) The method of establishing a home network connection in 
Claim 1 further comprising the step of: 

receiving the response from the Authentication, Authorization, Accounting 
broker server with a session time-out value as a discretionary indication to the home 
network server on how long the home network entry should be maintained as valid on 
the foreign network. 

9. (Previously Presented) The method of establishing a home network connection in 
Claim 1 further comprising the step of: 

receiving the response from the Authentication, Authorization, Accounting 
broker server with a tag value that indicates a host sever selection value. 
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10. (Previously Presented) The method of establishing a home network connection 
in Claim 1 further comprising the step of: 

receiving the response from the Authentication, Authorization, Accounting 
broker server with a certificate of the foreign network server and the host network 
server. 

11. (Previously Presented) The method of establishing a home network connection in 
Claim 10 further comprising the step of: 

receiving the response from the Authentication, Authorization, Accounting 
broker server with a certificate encapsulated in an Attribute Value Pair of the foreign 
network server and the host network server. 

12. (Previously Presented) The method of establishing a home network connection in 
Claim 10 further comprising the step of: 

receiving the response from the Authentication, Authorization, Accounting 
broker server with a certificate of the foreign network server and the host network 
server where the foreign network server forwards the certificate in a communication 
to the home Authentication, Authorization, Accounting server. 
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13. (Previously Presented) The method of establishing a home network connection in 
Claim 1 further comprising the step of: 

receiving the response from the Authentication, Authorization, Accounting 
broker server with a certificate encapsulated in an Attribute Value Pair of the foreign 
network server and the host network server. 

14. (Previously Presented) The method of establishing a home network connection 
in Claim 1 further comprising the step of: 

transmitting a request to a second Authentication, Authorization, Accounting 
broker server in response to the response received by the foreign network server. 

15. (Previously Presented) The method of establishing a home network connection 
in Claim 1 further comprising the step of: 

receiving the response from the Authentication, Authorization, Accounting 
broker server after the Authentication, Authorization, Accounting broker server 
validates the request from the foreign network against information retained in the 
Authentication, Authorization, Accounting broker server on allowed request clients. 

16. (Previously Presented) The method of establishing a home network connection 
in Claim 1 further comprising the step of: 

* receiving the response from the Authentication, Authorization, Accounting 
broker server after the Authentication, Authorization, Accounting broker server 
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validates the request from the foreign network by processing a destination attribute in 
an attempt to find a match on the home network. 

17. (Previously Presented) The method of establishing a home network connection 
in Claim 1 further comprising the step of: 

receiving the response from the Authentication, Authorization, Accounting 
broker server after the Authentication, Authorization, Accounting broker server 
validates the request from the foreign network by processing a user name attribute in 
an attempt to find a match on the home network. 

1 8. (Previously Presented) The method of establishing a home network connection 
in Claim 17 further comprising the step of: 

receiving the response from the Authentication, Authorization, Accounting 
broker server after the Authentication, Authorization, Accounting broker server 
validates the request from the foreign network by processing a destination attribute in 
an attempt to find a match on the home network. 
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19. (Currently Amended) [[The method of establishing a home network connection in 
Claim 1 further comprising the step of:]] The method of establishing a connection for a 
mobile node on a communication system having a home network for the mobile node and 
at least one foreign network comprising the steps of : 

receiving a registration request message at a foreign network Authentication. 
Authorization, Accounting server; 

transmitting a request to an Authentication, Authorization, Accounting broker 
server to obtain service level agreement information to establish a secure connection 
between the foreign and home networks; 

receiving at the foreign network Authentication, Authorization, Accounting 
server a response transmitted from the Authentication, Authorization, Accounting 
broker server containing service level agreement information stored on the 
Authentication, Authorization, Accounting broker server, wherein the response 
transmitted from the Authentication, Authorization, Accounting broker server 
contains the Internet Protocol address of the home network to which the request 
should be directly forwarded, and one or more instances of a first value to indicate 
that one or more different host networks can be contacted; and 

contacting a second Authentication, Authorization, Accounting broker server 
after a rejection response is received from the Authentication, Authorization, 
Accounting broker server. 
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20. (Previously Presented) The method of establishing a home network connection 
in Claim 1 further comprising the step of: 

after receiving the response from the Authentication, Authorization, 
Accounting broker server that services the home network, the foreign network 
initiates a security association pursuant to the returned service level agreement 
information in the response message by transmitting a message to the home network 
from the foreign network. 

21 . (Previously Presented) The method of establishing a home network connection 
in Claim 1 further comprising the step of: 

receiving a message from the home network server at the foreign network 
Authentication, Authorization, Accounting server after the home network that 
services the home network Authentication, Authorization, Accounting server 
processes a request from the foreign network server for a secure connection. 
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22. (Previously Presented) A system for establishing a home network connection of 
a mobile node on a foreign network in a wireless communications network 
comprising: 

a home network having a home agent coupled to a home Authentication, 
Authorization, Accounting server; 

a foreign network having a foreign agent coupled to a foreign Authentication, 
Authorization, Accounting server; 

a mobile node transmitting a request to the foreign Authentication, 
Authorization, Accounting server in a request to establish a secure connection 
between the mobile node and the home network; [[and]] 

an Authentication, Authorization, Accounting broker server coupled to the 
foreign Authentication, Authorization, Accounting server transmitting a request to the 
Authentication, Authorization, Accounting broker server to determine the location of 
the home network and security association information for establishing the secure 
connection between the mobile node and the home network according to a security 
protocol specified in the Authentication, Authorization, Accounting broker server; 
and 

the foreign Authentication, Authorization, Accounting server receives a 
response from the Authentication, Authorization, Accounting broker server with the 
Internet Protocol address of the home network to which the request should be directly 
forwarded and one or more instances of a first value to indicate that one or more 
different host networks can be contacted. 
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23. (Previously Presented) The system set forth in Claim 22 wherein: 

the foreign Authentication, Authorization, Accounting server receives a 
response from the Authentication, Authorization, Accounting server broker server 
that contain the Internet Protocol address of the home network to which the request 
should be directly forwarded. 

24. (Canceled) The system set forth in Claim 22 wherein: 

the foreign Authentication, Authorization, Accounting server receives a 
response from the Authentication, Authorization, Accounting broker server with 
multiple instances of a first value to indicate that different host networks can be 
contacted. 

25. (Previously Presented) The system set forth in Claim 22 wherein: 

the foreign Authentication, Authorization, Accounting server transmits the 
request to the Authentication, Authorization, Accounting broker server for all 
messages to be addressed to unknown networks in order to identify the home 
network. 

26. (Previously Presented) The system set forth in Claim 22 wherein: 

the foreign Authentication, Authorization, Accounting server receives a 
response from the Authentication, Authorization, Accounting broker server with a tag 
value that indicates a host server selection value. 
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27. (Previously Presented) The system set forth in Claim 22 wherein: 

the foreign Authentication, Authorization, Accounting server receives a 
response from the Authentication, Authorization, Accounting broker server that 
includes a session time-out value as a discretionary indication to the foreign network 
server on how long the home network entry should be maintained as valid on the 
foreign network. 

28. (Previously Presented) The system set forth in Claim 27 wherein: 

the foreign Authentication, Authorization, Accounting server receives the 
response from the Authentication, Authorization, Accounting broker server with a tag 
value that indicates a host server selection value. 

29. (Previously Presented) The system set forth in Claim 22 wherein: 

the foreign Authentication, Authorization, Accounting server receives the 
response from the Authentication, Authorization, Accounting broker server with a 
certificate of the foreign network server and the host network server. 

30. (Previously Presented) The system set forth in Claim 22 wherein: 

the foreign Authentication, Authorization, Accounting server receives the 
response from the Authentication, Authorization, Accounting broker server with a 
certificate encapsulated in an Attribute Value Pair of the foreign network server and 
the host network server. 
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3 1 . (Previously Presented) The system set forth in Claim 22 wherein: 

the foreign Authentication, Authorization, Accounting server receives the 
response from the Authentication, Authorization, Accounting broker server with a 
certificate that is forwarded to the home Authentication, Authorization, Accounting 
server. 

32. (Previously Presented) The system set forth in Claim 31 wherein: 

the foreign Authentication, Authorization, Accounting server receives the 
response from the Authentication, Authorization, Accounting broker server with a 
certificate encapsulated in an Attribute Value Pair of the foreign network server and 
the host network server. 

33. (Previously Presented) The system set forth in Claim 22 wherein: 

the foreign Authentication, Authorization, Accounting server transmits a 
second request to a second Authentication, Authorization, Accounting broker server 
in response to a rejection response received from the Authentication, Authorization, 
Accounting broker by the foreign network server. 
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34. (Previously Presented) The system set forth in Claim 22 wherein: 

the foreign Authentication, Authorization, Accounting server receives a 
response from the Authentication, Authorization, Accounting broker server after the 
Authentication, Authorization, Accounting broker validates the request from the 
foreign network against the information retained in the Authentication, Authorization, 
Accounting broker server on the allowed request clients. 

35. (Previously Presented) The system set forth in Claim 22 wherein: 

the foreign Authentication, Authorization, Accounting server receives a 
response from the Authentication, Authorization, Accounting broker server after the 
Authentication, Authorization, Accounting broker validates the request from the 
foreign network by processing a destination attribute in an attempt to find a match on 
the home network. 

36. (Previously Presented) The system set forth in Claim 22 wherein: 

the foreign Authentication, Authorization, Accounting server receives a 
response from the Authentication, Authorization, Accounting broker server after the 
Authentication, Authorization, Accounting broker validates the request from the 
foreign network by processing a user name attribute in an attempt to find a match on 
the home network. 
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37. (Previously Presented) The system set forth in Claim 36 wherein: 

the foreign Authentication, Authorization, Accounting server receives a 
response from the Authentication, Authorization, Accounting broker server after the 
Authentication, Authorization, Accounting broker validates the request from the 
foreign network by processing a destination attribute in an attempt to find a match on 
the home network. 

38. (Previously Presented) The system set forth in Claim 22 wherein: 

the foreign Authentication, Authorization, Accounting server receives a 
rejection response from the Authentication, Authorization, Accounting broker server 
after the Authentication, Authorization, Accounting broker server determines that the 
home network is not found serviced by the Authentication, Authorization, Accounting 
broker server. 

39. (Previously Presented) The system set forth in Claim 22 wherein: 

the foreign Authentication, Authorization, Accounting server contacts a 
second Authentication, Authorization, Accounting broker server after a rejection 
response is received from the Authentication, Authorization, Accounting broker 
server. 



16 



40. (Previously Presented) The system set forth in Claim 22 wherein: 

the foreign Authentication, Authorization, Accounting server initiates a 
security association pursuant to the returned information in the response message by 
transmitting a message to the home network from the foreign network. 

41. (Previously Presented) The system set forth in Claim 22 wherein: 

the foreign Authentication, Authorization, Accounting server receives a 
message from the home network server to the foreign network server after home 
network server processes the request from the foreign network server for a secure 
connection. 
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42. (Currently Amended) A method for establishing a connection for a mobile node 
on a communication system having a home network for the mobile node and at least 
one foreign network comparing the steps of: 

receiving a registration request message at a foreign Authentication, 
Authorization, Accounting server; 

transmitting a request to an Authentication, Authorization, Accounting broker 
server to obtain service level agreement information to establish a secure connection 
between the foreign and home network; 

receiving at the foreign network Authentication, Authorization, Accounting 
server a response from the Authentication, Authorization, Accounting broker server 
containing service level agreement information wherein the response transmitted 
from Authentication, Authorization, Accounting broker server contains the Internet 
Protocol address of the home network to which the request should be directly 
forwarded and one or more instances of a first value to indicate that one or more 
different host networks can be contacted ; and 

establishing a secure connection with an Authentication, Authorization, 
Accounting server on the home network based upon the service level agreement 
information received from the Authentication, Authorization, Accounting broker 
server to encrypt information packets transmitted between the home network and the 
mobile node. 
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